security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-11-10 21:38:50 +01:00
Code Activity
2,751 Commits 101 Branches 306 Tags 73 MiB
eb645a57e2
Commit Graph

36 Commits

Author SHA1 Message Date
Werner Koch
d0d72d98f3 Normalize the MPIs used as input to secret key functions. 
* cipher/rsa.c (secret): Normalize the INPUT.
(rsa_decrypt): Pass reduced data to secret.
* cipher/elgamal.c (decrypt): Normalize A and B.
* cipher/dsa.c (sign): Normalize HASH.
--

mpi_normalize is in general not required because extra leading zeroes
do not harm the computation.  However, adding extra all zero limbs or
padding with multiples of N may be useful in side-channel attacks. In
particular they are used by the acoustic crypt-analysis.  This is an
extra pre-caution which alone would not be sufficient to mitigate the
described attack.

CVE-id: CVE-2013-4576

Signed-off-by: Werner Koch <wk@gnupg.org>
 2013-12-03 09:26:04 +01:00
Werner Koch
9a2a818887 Switched to GPLv3. 
Updated gettext.
 2007-10-23 10:48:09 +00:00
Werner Koch
9f433cccca Removed the use of g10defs.h. 
This required some code cleanups and the introduction of
a few accessor ducntions in mpi.
 2006-12-11 19:54:53 +00:00
David Shaw
b625a6d1a9 (generate): Tweak to allow keys larger than 1024 bits. Enforce that the q 
size doesn't end between byte boundaries.
 2006-04-20 21:11:56 +00:00
David Shaw
2f94329422 The plumbing necessary to create DSA keys with variable sized q. 
Not yet used (q==160).
 2006-04-20 18:40:37 +00:00
Werner Koch
a1cdf3c75f Converted all m_free to xfree etc. 2005-07-27 18:10:56 +00:00
Werner Koch
7d4043ca57 Updated FSF street address and preparations for a release candidate. 2005-05-31 08:39:18 +00:00
David Shaw
2815f9fa49 * dsa.c (verify): s/exp/exponent/ to fix a compiler warning. From Werner 
on stable branch.
 2004-05-20 17:16:34 +00:00
David Shaw
68b3e412f4 * dsa.h, dsa.c (dsa_verify), elgamal.h, elgamal.c (elg_verify), rsa.h, 
rsa.c (rsa_verify), pubkey.c (dummy_verify, pubkey_verify): Remove old
unused code.
 2003-12-17 19:05:23 +00:00
David Shaw
151ee2f47b Update head to match stable 1.0 2002-06-29 13:31:13 +00:00
Werner Koch
07ca4eaa9d Removed files from the HEAD revision, because they are now in another 
repository
 2000-12-19 17:20:22 +00:00
Werner Koch
986649bea0 Some configuration changes 2000-11-14 16:04:16 +00:00
Werner Koch
92cd255508 See ChangeLog: Fri Jul 14 19:38:23 CEST 2000 Werner Koch 2000-07-14 17:34:53 +00:00
Werner Koch
4555c0be94 See ChangeLog: Wed Dec 8 21:58:32 CET 1999 Werner Koch 1999-12-08 21:03:03 +00:00
Werner Koch
2694bceb45 See ChangeLog: Fri Nov 19 17:15:20 CET 1999 Werner Koch 1999-11-19 16:11:37 +00:00
Werner Koch
37f3c09edb See ChangeLog: Mon Nov 15 21:36:02 CET 1999 Werner Koch 1999-11-15 20:32:25 +00:00
Werner Koch
881e513237 See ChangeLog: Sat Nov 13 17:44:23 CET 1999 Werner Koch 1999-11-13 16:43:23 +00:00
Werner Koch
a316550579 See ChangeLog: Thu Jul 15 10:15:35 CEST 1999 Werner Koch 1999-07-15 08:16:46 +00:00
Werner Koch
86abac78a2 See ChangeLog: Fri Jul 2 11:45:54 CEST 1999 Werner Koch 1999-07-02 09:50:57 +00:00
Werner Koch
28eb86c006 See ChangeLog: Thu Jul 1 12:47:31 CEST 1999 Werner Koch 1999-07-01 10:53:35 +00:00
Werner Koch
40238d4b63 See ChangeLog: Tue Jun 8 13:36:25 CEST 1999 Werner Koch 1999-06-08 11:41:46 +00:00
Werner Koch
e1a1b3fc90 See ChangeLog: Tue Feb 16 14:10:02 CET 1999 Werner Koch 1999-02-16 13:16:33 +00:00
Werner Koch
750d74333c See ChangeLog: Wed Dec 23 13:34:22 CET 1998 Werner Koch 1998-12-23 12:41:40 +00:00
Werner Koch
8477407e79 backup 1998-10-12 20:16:38 +00:00
Werner Koch
6d21f2838d chnages done at the train 1998-08-07 08:53:38 +00:00
Werner Koch
a9ec668cbe intermediate release 1998-07-06 10:23:57 +00:00
Werner Koch
06fd61d081 nearly ready for 0.3.0 1998-06-25 10:19:08 +00:00
Werner Koch
6e1ca6b80f extensions are now working and fixed a lot of bugs 1998-06-15 15:41:04 +00:00
Werner Koch
e662bf708b gnupg extension are now working 1998-06-13 17:00:02 +00:00
Werner Koch
69cf10ffab add DSA key generation 1998-05-05 20:34:20 +00:00
Werner Koch
700c438def applied Mathews typo and grammar fixes 1998-04-14 17:51:16 +00:00
Werner Koch
6b91e7762c some cleanups 1998-03-19 15:27:29 +00:00
Werner Koch
a6a8f1e706 partial DSA support 1998-03-09 21:44:06 +00:00
Werner Koch
5a05af2bca Renamed to GNUPG 1998-02-24 18:50:46 +00:00
Werner Koch
ee8d92fefa better prime number generator. improved ELG key generation 1997-12-19 11:41:47 +00:00
Werner Koch
68ea0f4353 added option file handling 1997-12-12 12:03:58 +00:00